Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-21 | CVE-2023-1998 | Information Exposure Through Discrepancy vulnerability in multiple products The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. | 5.6 |
| 2023-03-30 | CVE-2023-25000 | Information Exposure Through Discrepancy vulnerability in Hashicorp Vault HashiCorp Vault's implementation of Shamir's secret sharing used precomputed table lookups, and was vulnerable to cache-timing attacks. | 4.7 |
| 2023-03-28 | CVE-2023-26071 | Information Exposure Through Discrepancy vulnerability in Harpaitalia Mcuboict 10.12.4 An issue was discovered in MCUBO ICT through 10.12.4 (aka 6.0.2). | 7.5 |
| 2023-03-27 | CVE-2022-41354 | Information Exposure Through Discrepancy vulnerability in Linuxfoundation Argo-Cd An access control issue in Argo CD v2.4.12 and below allows unauthenticated attackers to enumerate existing applications. | 4.3 |
| 2023-03-21 | CVE-2023-1538 | Information Exposure Through Discrepancy vulnerability in Answer Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6. | 5.3 |
| 2023-03-21 | CVE-2023-1540 | Information Exposure Through Discrepancy vulnerability in Answer Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6. | 5.3 |
| 2023-03-02 | CVE-2023-25806 | Information Exposure Through Discrepancy vulnerability in Amazon Opensearch and Opensearch Security OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. | 5.3 |
| 2023-03-01 | CVE-2022-39228 | Information Exposure Through Discrepancy vulnerability in Vantage6 vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. | 6.5 |
| 2023-02-16 | CVE-2020-12413 | Information Exposure Through Discrepancy vulnerability in Mozilla Firefox The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. | 5.9 |
| 2023-02-15 | CVE-2023-0361 | Information Exposure Through Discrepancy vulnerability in multiple products A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. | 7.4 |